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W THE CLAIMS 

Please amend claims 1-37 as indicated below. 

1 (Currently Amended) A method comprising: 

identifying network elements at endpoints of a data connection channel; 
generating a candidate path between the network elements at the endpoints; 
validating the candidate path by determining whether the candidate path provides at 

least a service requirement s e lected from a group Gonoioting based on a service 

description describing at least one or 

minimum bandwidth that is to be guaranteed for each data connection , 
maximum bandwidth to which each data connection is constrained , 
maximum delay that packets in a data connection are allowed to tolerate, 
maximum jitter that a data connection is allowed to tolerate, 
minimum reliability that each data connection is to be provided , 
inclusion of network elements capable of acting as security gateways that 

bracket untnisted sections of the candidate path, 
reachability, and 

data collection capability to be instantiated between network locations when 
the service is in use ; and 
configuring network elements along a validated candidate path to implement the 
service requirement- 
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2. (Currently Amended) The method of claim 1, furth e r comprising: wherein the service 
d escription further describes at least one of: 

subscribers who subscribe the service: 

parties involved in providing or using the service: 

network locations of each party: 

a maximum amount of concurrent usage of the service between the network locations: 
each data connection to be instantiated between the network locations when the 
service is in use; 

whetherdata transfer over a data connection is one-way or two-wav: 

whether security is to be provided and a security profile which determines nature of 

the security to be provided: and 
types of data to be collected regarding packets flowing through the data connection 

and granularity at which the data is to be collected- 
id e ntifying n e twork e lem e nt s at endpoints of a plurality of data connection channelo; 
for each data conn e ction chann e l, g e nerating at least one candidate path betwoon tho 

network element s at the endpointa of thoKiata connection channel; 
for e ach candidate path, validating thoeandidato path by d e termining whether the 
candidato path provides at least a service requirement selected from a group 
consisting of minimum bandwidth, maximum bandwidth 7 maximum delays 
maximum jitter 7 reliability, inclusion of network elements capabl e of acting as 
security gateways that brack e t untrusted s e ctions of the candidate path, 
reachability, and data collection capability; and 
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configuring network e lements along validated candidate patha to implement service 
requirements. 

3 (Currently Amended) The method of claim 1 , further comprising recording a 
configuration performed on the network elements in a provisioning database, wherein the 
p rovisioning database stores information selected from a group consisting of: 
a service description; 

a data connection description for describing one of one-way and two-way data 

connection channels being provisioned; 
security profiles of all services previously provisioned; 
a path taken through a network by each data connection channel; and 
a configuration that has been performed at each router along the path taken by each 

data connection channel. 

4. (Currently Amended) The method of claim 1, further comprising: 3, wherein the 
c onfiguration of the network elements are performed further based on network topologies of 
t he network provided via a network topology database, wherein the network topology 
d atabase stores information selected from a group consisting of: 

a vendor and model of each router that determines what protocols to use to 
communicate with the router: 

a IP subnet to which each router interface belongs: 

a available bandwidth in each direction of each data link; 

a status of each data link and the interfaces connected: 

a type of packet forwarding mechanism used on each interface; 
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a copy of the routing table from each router: 

a copy of any information from each router that indicates which QoS-enhanced 

fonvarding mechanisms are directing packets: 
to whom each IP subnet, and hence each router interface, is dedicated to; and 
whether a router can function as a security gateway. 

id e ntifying data connection chann e l s- that - hav »- b ee n provioionod to implement a 
s e rvice; 

for oach data connoction channels - identifying a path followed by the data conn e ction 
channel and a configuration porfbrmod to implomont tho oorvioo at notwork 
olomontfl along the pfifey 

undoing th e configuratiofl - p e rform e d to impl e ment th e s e rvic e at th e n e twork e l e ments 
along the path; and 

removing a recording of th e configuration p e rform e d to impl e m e nt th e service on the 
n e twork elem e nt s along the path. 

5. (Currently Amended) The method of claim 1, further comprising: 
identifying a change in a routing table entry; 

identifying data connection channels provisioned on a data link connected to an 
interface referenced by the routing table entry prior to the change; 

for each data connection channel provisioned on the data link, identifying whether the 
data connection channel is affected by the change; 

for each data connection channel affected by the change, de-provisioning the data 
connection channel affected by the change; and 
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for each data connection channel affected by the change, re-provisioning the data 

connection channel affected by the change; 
reserving a predetermined percentage of bandwidth for each direction of a data link, 
wherein reserving the predetermined percentage of bandwidth is to 
provide room for manually deployed services, 
provide a buffer to accommodate unanticipated network traffic, and 
provide a buffer to accommodate one of an imprecisely understood behaviour 
and an imprecise bandwidth control in a router feeding of a data link: 
and 

determining an effective bandwidth capacity of the data link by subtracting the 

reserved bandwidth from an available bandwidth associated with the data link . 

6. (Currently Amended) The method of claim 1, wherein generating a candidate path 

between the network elements at the endpoints further comprises; 

assigning to a link in a graph that is not in a preferred area of a network a weight that 
is different than a weight assigned to a link in the graph that is in a preferred 
area of the networ k: and 
adjusting a weight assinned to a link in the graph depending on a proportion of usage 
of available bandwidth of the link, wherein a link in the graph having heavier 
usage relative to other links in the graph is adjusted to a weight indicating a 
lesser preference, and wherein a link in the graph having lighter usage relative 
to other links in the graph is adjusted to a weight indicating a greater 
preference . 
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7. (Currently Amended) The method of claim 6 t further comprising displaying the graph 
in a display, wherein vertices represent routers and links represent data links, wherein links in 
th e graph have a directional iry indicating a direction in which packets in one embodiment 
fl ow on the corresponding data link, and wherein two-way data links are represented in the 
g raph by one of a bi-directional link and two back-to-back uni-directional links directed in 
op posite directions wh e r e in assigning to a link in a graph that is not in a preferred oreo - of a 
a otworic a w e ight that is diff e rent than a weight a ss ign e d to a link in the grap h- that - is 4 ft ' a 
gi=gfe rred ar e a of tho network further comprise s adju s ting a weight assigned to a link in th e 
jg -aph depending on a proportion of uoago of availablo bandwidth of the link. 

8 (Currently Amended) The method of claim 6, further comprising determining the 
minimu m hflndwi dth of the candidate path that is required bv the service being deployed, 

wherein each data link in the candidate path includes an available_bandwidth equal or 
greater than the minimum bandwidth of the corresponding data connection 
channel, 

wherein if any data link in the candidate path does not have an available bandwidth 
equal or greater than the minimum bandwidth of the corresponding data 
connection channel, the corresponding available bandwidth equal or greater 
than the minimum bandwidth of the corresponding data connection channel is 
removed from the graph for further consideration, 

wherein the minimum bandwidth of the data connection channel is determined based 
on a product of the minimum bandwidth described in a corresponding data 
connection description and the maximum amount of concurrent service usage 
from the service description, and 
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wherein the maximum bandwidth of the data connection channel is determined based 
on a product of the maximum bandwidth from the corresponding data 
connection description and the maximum amount of concurrent service usage 
from the service description 7, whoroin adiuoting a weight as s igned to a link in 
th e graph doponding on a proportion of usage of available bandwidth of th e 
link furthor comprises: 

adjusting a weight asGignod to a link in tho graph having lighter usag e relative to oth e r 
links in the graph - to - a - w e ight indicating a r gf&ator proforonoo; and 

adjusting a weight assigned to a link in the graph having heavi e r usag e relative to other 
links in tho graph to a weight indicating a lesser - pref e r e nce . 

9 (Currently Amended) The method of claim [[7]] 8, wherein if a router is not capable 
o f managing cross-router queuing delay, the minimum bandwidth is determined based on the 
f ollowing: 

BW^=max(BW may , (S^/D^X 

wherein BW min represents a minimum bandwith in bits per second, wherein BW^ 
represents a required maximum bandwidth from the data connection 
description in bits per second wherein represents a maximum size of a 
packet in bits, and wherein D mft , represents a maximum cross router queuing 
delay in seconds 

a djusting a weight assign e d to a link in th e graph depending on a proportion of usag e of 
a vailable bandwidth of the link furthor comprises - 

adjusting a weight assigned to a link in the graph having h e avier usage relativ e to other 
links in th e graph to a w e ight indicating a greater preference; and 
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a dj usting a weight assigned to a link in the graph having lighter uoago r e lative to other 
linlcG in tho graph to a weight indicating a lessor preference . 

10. (Currently Amended) A method for a provisioning system comprising: 

[[a)]] identifying a candidate path for a newly requested service, the newly requested 
service having a service description, wherein the newly requested service is in 
an Internet Protocol (IP) network, the IP network having a plurality of routers, 
wherein the identified candidate path travels through a set of the plurality of 
routers; 

[[b)]] determining whether the set of the plurality of routers can be configured to meet 
a set of requirements specified by the service description^ 
wherein each data link in the candidate path includes an available bandwidth 

equal or greater than the minimum bandwidth of the corresponding data 
connection channel, 
wherein if any data link in the candidate path does not have an available 
bandwidth equal or greater than the minimum bandwidth of the 
corresponding data connection channel, the corresponding available 
bandwidth equal or greater than the minimum bandwidth of the 
corresponding data connection channel is removed from the graph for 
further consideration, 
wherein the minimum bandwidth of the data connection channel is determined 
based on a product of the minimum bandwidth described in a 
corresponding data connection description and the maximum amount of 
concurrent service usage from the service description, and 
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wherein the -maximum bandwidth of the data connection channel is 

determined based on a product of the maximum bandwidth From 
the corresponding data connection description and the 
maximum amount of concurrent service usage from the service 
description ; and 

[[c)]] if the set of the plurality of routers are determined to meet the set of 

requirements, then translating the set of requirements into a corresponding set 
of router management commands to configure each router in the set of the 
plurality of routers, 

1 1. (Currently Amdned) The method of claim 10, wherein the service description 

c omprises further coaapti B ia g: 

a minimum bandwidth that is to be guaranteed for each data connection, 

a maximum bandwidth to which each data connection is constrained, 

a maximum delay that packets in a data connection are allowed to tolerate, 

a maximum jitter that a data connection is allowed to tolerate, 

minimum reliability that each data connection is to be provided. 

an inclusion of network elements capable of acting as security gateways that bracket 

un trusted sections of the candidate path, 
reachability, 

a data collection capability to be instantiated between network locations when the 

service is in use, 
subscribers who subscribe the service, 
parties involved in providing or using the service. 
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network locations of each party, 

a maximum amount of concurrent usage of the service between the network locations, 
each data connection to be instantiated between the network locations when the 
service is in use. 

whether data transfer over a data connection is one-way or two-way, 

whether security is to be provided and a security profile which determines nature of 

the security to be provided, and 
types of data to be collected regarding packets flowing through the data connection 

and granularity at which the data is to be collected. 

d) identifying a plurality of candidate paths for a n e wly requ e st e d s e rvice, tho nowly 

raquoGtod Gorvioo having a Qoniotfr d eacrifrtiony wherein the newly requested 
service i s in an Internet Protocol (BP) network, the IP n e twork having a 
p lurality of routers, wherein each candidate path of th e plurality of candidate 
patho travolo through a subset of the plurality of routers; 

e ) for each candidate path, determining whether a ouboot of the plurality oi - go s tora ^ ean 

be configured to me e t a s e t of r e quir e m e nts sp e cified by the s e rvice 
description; and 

f) for each s et of r e quirements, if a sub s et of the plurality of rout e s are d e termin e d to 

m ee t the set of r e quir e m e nts, then translating th e s e t of requir e ments into a 
corresponding set of po s ter management commando to configure each routor in 
th e subs e t of th e plurality of routers* 

12. (Currently Amended) The method of claim 10, further comprising: 
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reserving a predetermined percentage of bandwidth for each direction of a data link, 
wherein reserving the predetermined percentage of bandwidth is to 
provide room for manually deployed services, 
provide a buffer to accommodate unanticipated network traffic, and 
provide a buffer to accomTnn^iate one of an imprecisely understood behaviour 

and an imprecise bandwidth control in a router feeding of a data link; 

and 

determining an effective bandwidth capacity of the data link bv subtracting the 

reserved bandwidth from an available bandwidth associated with the data link. 
t herein th e s e t of requirements includes on e or mor e of quality of service, - GocuriEy ; 
te achability, and data collection specifications. 

1 3. (Currently Amended) The method of claim 10, further comprising: 

assigning to a link in a graph that is not in a preferred area of a network a weight that 
is different than a weight assigned to a link in the graph that is in a preferred 
area of the network: 

adjusting a weight assigned to a link in the graph depending on a proportion of usage 
of available bandwidth of the link, wherein a link in the graph having heavier 
usage relative to other links in the graph is adjusted to a weight indicating a 
lesser preference, and wherein a link in the graph having lighter usage relative 
to other links in the graph is adjusted to a weight indicating a greater 
preference: and 

dis playing the graph in a display, wherein vertices represent routers and links represent 
data links, wherein links in the graph have a directionality indicating a 
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direction in which packets in one embodiment flow cm the corresponding data 
link, and wherein two-way data links are represented in the graph bv one of a 
bi-diiectional link and two back-to-back uni -directional 1ink$ directed in 
opposite directions. 

if the identified candidate path cannot fulfill the s e t of requirements arid thoro oro other 
untried candidate paths, th e n identifying a different candidate path and 
repeating Dtops b) and c). 

14. (Currently Amended) The method of claim 10, wherein if a router is not capable of 
managing cross-router queuing delay, the minimum bandwidth is determi ned based on the 
f ollowing: 

v. herein BW m m represents a minimum bandwith in bits per second, wherein BWm^ represents 
a required maximum bandwidth from the data connection description in bits per second, 
wherein represents a maximum size of a packet in bits, and wherein Dmax represents a 
maximum cross router queuing delay in seconds th e translating includes querying a network 
K tpology database to determine the capabilities of each routcr -e f the plurality of routers . 

1 5. (Currently Amended) A method for a provisioning system comprising: 

identifying a set of one or more candidate paths for a newly requested service in an 

Internet Protocol (TP) network having a plurality of routers, wherein each of the 
candidate paths travels through a different subset of the plurality of routers, the 
newly requested service having a service description; 

eliminating a candidate path from the set of candidate paths whose corresponding 
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subset of the plurality of routers cannot be configured to meet the set of 
requirements specified by the service description including a minimum 
bandwidth required by the service being deployed wherein the minimum 
bandwidth is determined based on BW m in=maxflBWm 3K , (5™* / DmJ), 
wherein BW^n represents a minimum bandwith in bits per second, wherein 
BW rT represents a required maximum bandwidth from the data 
connection description in bits per second, wherein Sma« represents a 
maximum $i*e of a packet in bits» and wherein D ra y represents a 
maximum cross router queuing delay in seconds ; and 
translating a remaining candidate path into a set of router management commands to 
configure the subset of the plurality of routere. 

1)5, (Currently Amended) The method of claim 15, further comprising: 

reserving a predetermined percentage of bandwidth for each direction of a data link, 
wherein reserving the predetermined percentage of bandwidth is to 
provide room for manually deployed services, 
provide a buffer to accommodate unanticipated network traffic and 
provide a buffer to accommodate one of an imprecisely understood behaviour 
and an imprecise bandwidth control in a router feeding of a data link; 
and 

determining an effective bandwidth capacity of the data link bv subtracting the 

reserved bandwidth from an available bandwidth associated with the data link. 
whoroin tho got of requirements includes on e or more of quality of s e rvic e , s e curity, and data 
e jection specifications . 
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P. (Currentiy Amended) The method of claim 15, further comprising: 

assigning to a link in a graph that is not in a preferred area of a network a weight that 
different than a weight assigned to a link in the graph that is in a preferred 
grea of the network: 

adjusting a weisht assigned to a link in the graph depending on a proportion of usage 
of available bandwidth of the link, wherein a link in the graph having heavier 
usage relative to nther link s in the graph is adjusted to a weight indicating a 
lesser pre ference, and wherein a link in the graph having l ighter usage relative 
to other links in the graph is adjusted to a weight indicating a greater 
preference: and 

displaying the graph in a display, wherein vertices represent routers and links represent 
data links, wherein links in the graph have a directionality indicating a 
direction in which packets in One embodiment flow on the corresponding data 
link, and wherein two-way data links are represented in the graph by one of a 
bi-directional link and two back-to-back unj -directional links directed in 
opposite directions. 

th e r e in th e id e ntifying includes querying q provioionod services database to add togothcg - the 
b andwidth commitm e nts of previously d e ploy e d servic e s to det e rmin e if e ach of th e candidat e 
p aths has suffici e nt uncommitted bandwidth for the newly requested servic e . 



IS. (Currently Amended) A provisioning system comprising: 

a provisioning engine coupled to a network topology database and a provisioned 

services database, the provisioning engine to identify candidate paths for newly 
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requested services in a network, each of the newly requested services having a 
corresponding service description that specifies a corresponding set of 
requirements, wherein each of the candidate paths are to include a subset of 
routers of a plurality of routers in the network, wherein the provisioning engine 
is to determine whether a set oF the candidate paths meet the corresponding set 
of requirements including a minimum bandwidth required by the service being 
deployed, wherein the min imum ba ndwidth is determined based on 
BW^maxfBW^ . fS^ / D^)\ 

wherein SW^ represents a minimum bandwith in bits per second wherein 
BW^ represents a required maximum bandwidth from the data 
connection description in bits per second, wherein S mav represents a 
maximum size of a packet in bits, and wherein Dm™ represents a 
maximum cross router queuing delay in seconds ; and 
a translation module coupled to the provisioning engine, the translation module to 
translate the set of requirements for a set of candidate paths that meet the 
corresponding set of requirements, the translation to generate corresponding 
router management commands to configure routers in the plurality of routers. 

19. (Currently Amended) The provisioning system of claim 18, wherein the provisioning 
eagine is further to: 

reserve a predetermined percentage of bandwidth for each direction of a data link to 
provide room for manually deployed services, 
provide a buffer to accommodate unanticipated network traffic, and 
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provide a buffer to accommodate one of an imprecisely understood behaviour 
and an imprecise bandwidth control in a router feeding of a data link; * 
and 

determine an effective bandwidth capacity of the data link bv subtracting the reserved 
bandwidth from an available bandwidth associated with the data link. 
w herein tho Got of requirem e nts includoG ono or more of quality of s e rvice, s e curity, and -€ ta * a 
e oll e ction ppocdficationo. 

20. (Currently Amended) The provisioning system of claim 18, wherein the provisioning 
e ngine is further to 

assign to a link in a graph that is not in a preferred area of a network a weight that is 
different than a weight assigned to a link in the graph that is in a preferred area 
of the network: 

adjust a weight assigned. to a link in the graph depending on a proportion of usage of 
available bandwidth of the link, wherein a link in the graph having heavier 
usage relative to other links in the graph is adjusted to a weight indicating a 
lesser preference^ and wherein a link in the graph having lighter usage relative 
to other links in the graph is adjusted to a weight indicating a greater 
preference: and 

display the graph in a display, wherein vertices represent routers and links represent 
data links, wherein links in the graph have a directionality indicating a 
direction in which packets in one embodiment flow on the corresponding data 
link, and wherein two-way data links are represented in the graph by one of a 
bi-directional link and two back-to-back uni-directional links directed in 
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opposite directions, 

w- aorcin tho tranolation modulo is to ototo the configuration of tho routers in the provisioned 



2... (Currently Amended) A machine-readable medium that provides instructions that, 
when executed by a machine, cause the machine to perform operations comprising: 
identifying network elements at endpoints of a data connection channel; 
generating a candidate path between the network elements at the endpoints; 
validating the candidate path by determining whether the candidate path provides at 

least a service requirement s e l e ct e d from a group consisting based on a service 
description describing at least one of 

minimum bandwidth that is to be guaranteed for each data connection , 
maximum bandwidth to which each data connection is constrained, 
maximum delay that packets in a data connection are allowed to tolerate . 
maximum jitter that a data connection is allowed to tolerate, 
minimum reliability that each data connection is to be provided , 
inclusion of network elements capable of acting as security gateways that 

bracket untrusted sections of the candidate path, 
reachability, and 

data collection capability to be instantiated between network locations when 
the service is in use ; and 
configuring network elements along a validated candidate path to implement the 
service requirement. 
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22. (Currently Amended) The machine-readable medium of claim 21 > wherein the service 
d escription further describes at least one of whoroin operations furth e r compris e: 

subscribers who subscribe the service; 

parties involved in providing or usinE the service: 

network locations of each party; 

a maximum amount of concurrent usage of the service between the network locations; 
each data connection to be instantiated between the network locations when the 
service is in use; 

whether data transfer over a data connection is one-way or two-way: 

whether security is to be provided and a security profile which determines nature of 

the security to be provided; and 
types of data to be collected regarding packets flowing through the data connection 

and granularity at which the data is to be collected* 
identifying n e twork elements at endpoints of a plurality of data conn e ction chann e ls ? 
for each data connoction channel, g e nerating at least on e candidat e path between th e 

network e l e m e nto at tho ondpointo of the data connoction channel; 
for e ach candidate path, validating th e candidat e path by d e t e rmining wh e ther th e 

candidat e path provid e s at l e ast a s e rvic e r e quirement coloctod from a group 

consisting of minimum bandwidth, maximum bandwidth; maximum delay; 

maximum jitter, reliability, inclusion of network el e m e nts capable of acting as 

s e curity gat e ways that braclcot untruotod sootiono of tho candidate path, 

reachability, and data coll e ction capability; and 
configuring network elements along validat e d candidate paths to implement GQrvio o 

requirements, 
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22 . (Currently Amended) The machine-readable medium of claim 21, wherein operations 
farther comprise recording a configuration performed on the network elements in a 
pr ovisioning database, wherein the provisioning database stores information selected from a 
gr oup consisting of: 

a service description: 

a data connection description for describing one of one-way and two-way data 

connection channels being provisioned; 
security profiles of all services previously provisioned: 
a path taken through a network by each data connection channel: and 
a configuration that has been performed at each router along the path taken by each 

data connection channel . 

(Currently Amended) The machine-readable medium of claim 21 7 wh e rein operationo 
fe rthor compriGo: 23, wherein the configuration of the network elements are performed further 
bg .sed on network topologies of the network provided via a network topology database, 
w nerein the network topology database stores information selected from a group consisting of: 

a vendor and model of each router that determines what protocols to use to 
communicate with the router; 

a IP subnet to which each router interface belongs: 

a available bandwidth in each direction of each data link: 

a status of each data link and the interfaces connected: 

a type of packet forwarding mechanism used on each interface; 

a copy of the routing table from each router: 
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a copy of any information from each router that indicates which QoS^enhanced 

forwarding mechanisms are directing packets: 
to whom each IP subnet, and hence each router interface, is dedicated to: and 
whether a router can function as a security gateway, 

id e ntifying data connection ohannolc that have b e en provisioned to implomont a 
servic e ; 

for each data connection channel, idontifying a path followed by tho data conn e ction 
channel and a configuration performed to implement tho corvico at n e twork 
elements along the path; 

undoing tho configuration p e rformed to implement tho G e rvic e at th e network olomonts 
along tho path; and 

removing a recording of the configuration performed to impl e m e nt the service on tho 
network olomonta along the path, 

25 (Currently Amended) The machine-readable medium of claim 21, wherein operations 
further comprise: 

identifying a change in a routing table entry; 

identifying data connection channels provisioned on a data link connected to an 
interface referenced by the routing table entry prior to the change; 

for each data connection channel provisioned on the data link, identifying whether the 
data connection channel is affected by the change; 

for each data connection channel affected by the change, ck>-provisioning the data 
connection channel affected by the change; and 
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for each data connection channel affected by the change, re-provisioning the data 

connection channel affected by the change; 
reserving a predetermine d percentage of bandwidth for each direction of a data link. 
wherein rese rving the predetermined p erc&ntfi ve of bandwidth is to 
provide room for manually deployed services., 
provide a bu ffer to accommodate unanticipated network traffic, and 
provide a buffer to accommodate one of an imprecisely understood behaviour 
and an imprecise ba ndwidth control in a router feeding of a data link: 
and 

determining an effective ban dwidth capacity of the data link bv subtracting the 

reserved bandwidth from an available bandwidth associated with the data link , 

26. (Currently Amended) The machine-readable medium of claim 21 , wherein operations 
fiuther comprise:, 

assigning to a link in a graph that is not in a preferred area of a network a weight that 
is different than a weight assigned to a link in the graph that is in a preferred 
area of the networ k; and 

adjusting a weight assig ned to a link in the graph depending on a proportion of usage 
of available ba ndwidth of the link, wherein a link in the praph having heavier 
usage relative t o other links in the graph is adjusted to a weight indicating a 
lesser preferen ce, and wherein a link in the graph having lighter usage relative 
to other links in the graph is adjusted to a weight indicating a greater 
preference. 
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Ti . (Currently Amended) The machine-readable medium of claim 26, wherein the 
operations further comprise displaying the graph in a display, wherein vertices represent 
no iters and links represent data links, wherein links in the graph have a directionality 
investing a direc tion in which packets in one embodiment flow on the corresponding data 
Iirk, and wherein t wo-way data links are represented in the graph bv one of a bi-directional 
lia k and two back-to-back uni-directional links directed in opposite directions whsrem 
as signing to a link in a graph that is not in a preferred area of a network a weight that ia 
&j f&ront than a weight assigned to a link in the graph that is in a preferred area of tho network 
fa ther comprises adjusting a weight assigned to a link in th e graph depending on a proportion 
e^ asage of availabl e bandwidth of th e link . 

28. (Currently Amended) The machine-readable medium of claim 27, further comprising 
de iermining the minimum bandwidth of the candidate path that is required by the service 
be:.ng deployed^ 

wherein each data link in the candidate path includes an available bandwidth equal or 
greater than the minimum bandwidth of the corresponding data connection 
channel, 

wherein if anv data link in the candidate path does not have an available bandwidth 
equal or greater than the minimum bandwidth of the corresponding data 
connection channel, the corresponding available bandwidth equal or greater 
than the minimum bandwidth of the corresponding data connection channel is 
removed from the graph for further consideration. 

wherein the minimum bandwidth of the data connection channel is determined based 
on a product of the minimum bandwidth described in a corresponding data 
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connection descript ion and the maximum amount of concurrent service usag e 
from the service description, and 

wherein the maximum bandwidth of the data connection channel is determined has*H 
on a product of the maximum bandwidth from the corresponding data 
gonnecdon description and the maximum amount of concurrent service usage 
from the s e rvice description wh e r e in adjuating a wm'ght nnnignnri m n lint- in 
the graph dep e nding on - a proportion of ucago of available bandwidth of tho 
link further compriooc: 

adjusting a weight assigned to a link in tho graph having lighter ucago relative to other 
links in tho graph to a weight indicating a greater preference; and 

adjusting - a weight unsigned to a link in tho graph having heavi e r usage relative to other 
links in the graph to a weight indicating a lessor pr e ference . 

29 (Currently Amended) The machine-readable medium of claim 28, wherein if a router 
is not capable of managing cross-router Queuing delay, the minimum bandwidth is determined 
bated on the following: 

BW^=max(BW^ . (S^_ I D^)\ 
wherein BW min represents a minim um bandwith in bits per second, wherein BW^ represents 
acquired maximum bandwidth from the data connection description in bits per seconds 
wherein Sm*. represents a max imum size of a packet in bits, and wherein D tY ^ represents a 
maximum cross router Queuin g delay in seconds 27. wheroin adjuring n weight nnnignnH tr, n 
lia.c in tho graph d e pending on a proportion of - uaago of available bandwidth of the link further 
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adjusting q woight assigned to a link in the graph having heavier usage relatives to other 
Tinlcs in the graph to a weight indicating a greater preference; and 

adjuQting a w e ight assigned to a link in tho graph having lighter usag e relative to other 
links in tho graph to a weight indicating a leooor preference . 

30. (Currently Amended) A machine-readable medium that provides instructions that, 
when executed by a machine, cause the machine to perfonn operations comprising; 

[[a)]] identifying a candidate path for a newly requested service, the newly requested 
service having a service description, wherein the newly requested service is in 
an Internet Protocol (IP) network, the DP network having a plurality of routers, 
wherein the identified candidate path travels through a set of the plurality of 
routers; 

[[b)]] determining whether the set of the plurality of routers can be configured to meet 
a set of requirements specified by the service description* 
wherein each data link in the candidate path includes an available bandwidth 

equal or greater than the m inimum bandwidth of the corresponding data 
connection channeL 
wherein if any data link in the candidate path does not have an available 
bandwidth equal or greater than the minimum bandwidth of the 
corresponding data connection channel, the corresponding available 
bandwidth equal or greater than the minimum bandwidth of the 
corresponding data connection channel is removed from the graph for 
farther consideration* 
wherein the minimum bandwidth of the data connection channel is determined 
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based on a product of the minimum bandwidth described in a 
corresponding dat a connection description and the m aximum am ount of 
concurrent service usage from the service description, and 
wherein the maxi mum bandwidth of the data connection channel is 

determined based on a product of the ma ximum ba ndwidth from 
the corresponding data connection description and the 
maximum amount of concurrent service usage from the service 
description : and 

[[c)]] if the set of the plurality of routers are determined to meet the set of 

requirements, then translating the set of requirements into a corresponding set 
of router management commands to configure each router in the set of the 
plurality of routers. 

31 (Currently Amended) The machine-readable medium of claim 30, wherein the service 

description comprises operation n furthor rrmnpriQfv 

a minimu m bandwidth that is to be guaranteed for each data connection. 

a maximum bandwidth to which each data connection is constrained, 

a maxim um delay that packets in a data connection are allowed to tolerate, 

a maximum jitter that a data connection is allowed to tolerate. 

minimum reliability that each data connection is to be provided, 

an inclusi on of network elements capable of acting as security gateways that bracket 

un trusted sections of the candidate p ath. 
reachability, 
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a data collection capability to be in stantiated between network locations when the 

service is in use, 
subscribers who subscribe the service. 
parties invol ved in providing or using the service, 
network locations of each party. 

a maximum amount o f concurrent usage of the service between the network locations, 
each data c onnection to be instantiated between the network locations when the 
service is in use. 

whether data transfer over a data connection is one-way or two-wav. 

whether security is to be provided and a security profile which determines nature of 

the security to be provided, and 
types of data to be collected regarding packets flowing through the data connection 

and granularity at which the data is to be collected. 

d) identifying a plurality of candidate paths for a newly • requ e st e d service, tho newly 

r e quested servic e having a s e rvice description, wherein the newly roquoctod 
service is in an Internet Protocol (DP) network, tho IP network having a 
plurality of routers, whorein e ach candidate path of the plurality of candidate 
p afes - fe - av e ls through a subsot of tho plurality of routers; 

e) for caoh - candidate path, determining whether a subsot of tho plurality of routorc can 

b e configured to meet a oot of requirem e nts sp ecified by the service 
description; and 

f) for OQch s e t of requir e ments, if a subs e t of the plurality of routers are d e tennin ed-to 

m ee t th e set of requirements), then translating tho oot of requirements into - a 
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corresponding se t of rout e r management commando to configure each routor in 
the sub s et of tho plurality of routers. 

32. (Currently Amended) The machine-readable medi um of claim 30, further comprising: 
reserving a predetermined percentage of bandwidth for each direction of a data link, 
wherein reserving the predetermined percentage of bandwidth is to 
provide room for manually deployed services, 
provide a buffer to accommodate unanticipated network traffic, and 
provide a buff er to accommodate one of an imprecisely understood behaviour 
and an imprecise bandwidth control in a router feeding of a data link: 
and 

determining an effective bandwidth capacity of the data link bv subtracting the 

reserved bandwidth from an available bandwidth associated with the data link» 
wtoroin tho sot" of r e quirements inriudos one or more of quality of service, security, 
roc.chability, and data collection spocifications. 

33 (Currently Amended) The machine-readable medium of claim 30, wherein operations 
further comprise: 

assifminp; tn a link in a graph that is not in a preferred area of a network a weight that 
is different than a weight assigned to a link in the graph that is in a preferred 
area of the network: 

adjusting a weight assigned to a link in the graph depending on a proportion of usage 
of available bandwidth of the link, wherein a link in the graph having heavier 
usage relat ive to other links in the graph is adjusted to a weight indicating a 
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lesser preference, and wherein a link in the graph having lighter usage relative 
to other links in the graph is adjusted to a weight indicating a greater 
preference; and 

displaying the graph in a display, wherein vertices represent routers and links represent 
data links. whCTtin links in the graph have a directionality indicating a 
direction in which packets in one embodiment flow on the corresp onding rlata 
link, and wherein two-way data links are represented in the graph by one of a 
bi-directional link and two back-to-back uni-directional links directed in 
opposite directions, 

if th e identified candidate path cannot fulfill th e s e t of requirements and th e re are other 
untried candidato paths, then identifying a different candidate - path and 
r e peating steps b) and g )? 

34. (Currently Amended) The machine-readable medium of claim 30, wherein if aiouter 
is lot capable of managing cross-router queuing delay, the minimum bandwidth is determined 
ba sed on the following: 

B_W m m=max(BW m , y , (S ma * / D-^), 
w herein BW^ represents a minimum bandwith in bits per second, wherein BW^ represents 
a r equired maximum bandwidth from the data connection description in bits per second. 
wherein S m „ re presents a maximum si2e of a packet in bits, and wherein D mfl * represents a 
iraixijnum cross router queuing delay in seconds the translating inclurien qnnrying n np.twnr1r 
tejt ology database to determine tho capabiliti e s of each routor of th e plurality of routors . 

35. (Currently Amended) A machine-readable medium that provides instructions that, 
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when executed by a machine, cause the machine to perform operations comprising: 

identifying a set of one or more candidate paths for a newly requested service in an 

Internet Protocol (IP) network having a plurality of routers, wherein each of the 
candidate paths travels through a different subset of the plurality of routers, the 
newly requested service having a service description; 
eliminating a candidate path from the set of candidate paths whose corresponding 
subset of the plurality of routers cannot be configured to meet the set of 
requirements specified by the service descriptio nincluding a minimum 
bandwidth required bv the service being deployed, wherein the minimum 
bandwidth is determined b ased on BW^=max(BW^ . fS^ / D^U 
wherein BW^ represents a minimum bandwith in bits per second, wherein 
BW ma¥ represents a required maximum bandwidth from the data 
connection description in bits per second, wherein S m ^ represents a 
maximum size of a packet in bits, and wherein D 

max represents a 
maximum cross router queuing delay in seconds : and 
translating a remaining candidate path into a set of router management commands to 
configure the subset of the plurality of routers. 

36. (Currently Amended) The machine-readable medium of claim 35 t wherein the 
operations further comprise: 

reserving a predetermined percentage of bandwidth for each direction of a data link, 

wherein reserving the predetermined percentage of bandwidth is to 

provide room for manually deployed services. 

provide a buffer to accom modate u nanticipated network traffic, and 
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provide a buffer to accommodate one of an imprecisely understood behaviour 
and an imprecise bandwidth control in a router feeding of a data link; 
and 

determining an effective bandwidth capacity of the data link bv subtracting the 

reserved bandwidth from an available bandwidth associated with the data link. 
wherein th e s e t of requirem e nts includoG one or more of quality of service, security, and data 
collection specifications 

37. (Currently Amended) The machine-readable medium of claim 35, wherein the 
operations! further comprise: 

assigning to a link in a graph that is not in a preferred area of a network a weight that 

is different than a weight assigned to a link in the graph that is in a preferred 

area of the network: 

adjusting a weight assigned to a link in the graph depending on a proportion of usage 
of available bandwidth of the link, wherein a link in the graph having heavier 
usage relative to other links in the graph is adjusted to a weight indicating a 
lesser preference, and wherein a link in the graph having lighter usage relative 
to other liftks in the graph is a djusted to a weight indicating a greater 
preference: and 

displaying th e graph in a display, wherein vertices represent routers and links represent 
data links, wherein links in the graph have a directionality indicating a 
direction in which packets in one embodiment flow on the corresponding data 
link, and wherein two-way data links are represented in the graph by one of a 
bi-directional link and two back-to-back uni-directional links directed in 
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opposite directions. 

wherein tho identifying includ e s querying a provision e d servic e s databas e to add together the 
bandwidth commitments of previously deployed Gorvices to dotomiino if each of the candidate 
paihs has sufficient - uncommittod bandwidth for the nowly requ es ted s ervice, - 
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